Blogs

Events

Stories

Attention: RHN Hosted will reach the end of its service life on July 31, 2017.
Customers will be required to migrate existing systems to Red Hat Subscription Management prior to this date.
Learn more here

Details

Updated kernel packages that fix one security issue, several bugs, and addvarious enhancements are now available as part of the ongoing support andmaintenance of Red Hat Enterprise Linux version 5. This is the tenthregular update.

The Red Hat Security Response Team has rated this update as having moderatesecurity impact. A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is available from the CVE link inthe References section.

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.

This update fixes the following security issue:

* It was found that a deadlock could occur in the Out of Memory (OOM)killer. A process could trigger this deadlock by consuming a large amountof memory, and then causing request_module() to be called. A local,unprivileged user could use this flaw to cause a denial of service(excessive memory consumption). (CVE-2012-4398, Moderate)

Red Hat would like to thank Tetsuo Handa for reporting this issue.

This update also fixes numerous bugs and adds various enhancements. Referto the Red Hat Enterprise Linux 5.10 Release Notes for information on themost significant of these changes, and the Technical Notes for furtherinformation, both linked to in the References.

All Red Hat Enterprise Linux 5 users are advised to install these updatedpackages, which correct this issue, and fix the bugs and add theenhancements noted in the Red Hat Enterprise Linux 5.10 Release Notes andTechnical Notes. The system must be rebooted for this update to takeeffect.

Solution

Before applying this update, make sure all previously released erratarelevant to your system have been applied.

To install kernel packages manually, use "rpm -ivh [package]". Do not use"rpm -Uvh" as that will remove the running kernel binaries from yoursystem. You may use "rpm -e" to remove old kernels after determining thatthe new kernel functions properly on your system.

709658 - Bad build req: No Package Found for kernel-debug-devel-x86_64756309 - extN: new file created even if open(2) returned -EPERM853474 - CVE-2012-4398 kernel: request_module() OOM local DoS862862 - long ixgbevf interface name crashes kernel865292 - [Hyper-V] storvsc: Account for in-transit packets in the RESET path865736 - Only 2 VF can be seen in RHEL5.9 PV guest894360 - starting a F18 install as a CentOS5 xen guest961667 - xen: numa: guest crash on second restore